Lax Security
Anyone is a popular target if your security is lax.
These people aren't stupid, they are actively looking for decent sized operations that don't take cyber threats seriously.
A Norwegian maritime risk management business is getting a lesson in that very area, after a ransomware attack forced its ShipManager software offline and left 1,000 ships without a connection to on-shore servers. DNV said the attack happened on January 7, and updated its report yesterday to say it involved ransomware – but …
The answer should be NO.
The only reason these attacks continue are because these assholes are getting paid. Stop paying and the problem goes away.
Yes, your company might fold in the meantime. It's called the Greater Good.
And, next time, train your personnel better.
Not a useful suggestion.
People still pay ransoms in (people) kidnapping cases. Those cases get much more focus from law enforcement, and the person kidnapped also has their own intelligence to use to protect themselves.
It is obvious that corporate asset "kidnapping" will always be many orders of magnitude more prevalent than kidnapping people and many more ransoms will be paid.
The answer isn't vague instructions to "not pay" in the vain hope the bad guys will decide it isn't worth it. The answer is investment in proper security so that you are not an easy target and/or won't have much you have to pay for.
>The only reason these attacks continue are because these assholes are getting paid. Stop paying and the problem goes away.
The problem might go away if we simply turned a blind eye to events in the Ukraine...
Just saying they haven't ruled out a state player being behind this attack...
Except it isnt always that simple is it but then you know that.
A primary school I work with suffered a ransomware attack that had sweet FA to do with users so the training element is meaningless and the school had implemented all reasonable and expected security measures. I assume that was their fault?
I assume you will happily lose your business and livelihood for the greater good?
to increase the cost of living even more with higher expenses for transpo cyber security. It will get passed on to us.
The Maersk attack was massively successful, IIRC their proprietary software was still intact at only one office in the world, where the power had gone out before the attack happened. Otherwise they would have lost everything.
Somebody found a shareware preview of Peasants Quest on a CD-rom in an old magazine, and >boom< it’s a run-away 1994 ransomware pandemic, all because some yokel put it on internets. Everybody thought it was safe to thrown away their windows xp antivirus & whoopsie!
https://youtu.be/xixgDV_9RJI
I'm pretty sure this is the DaVinci Virus and it will likely eventually cause the ballast in the ships to ship and the little boats will flip over unless a million dollars is deposited into a specific numbered account.
I recommend you they track down a hacker named "The Plague"
ShipManager is a software platform that its developer said is designed to manage entire marine fleets. It includes modules for managing maintenance, crew, hull integrity and other aspects of overseeing a fleet of shipping vessels.
If only the Tittanic has such useful software, then it have been able to manage its Hull Integrity malfunction much better.
I'd always thought the proper management of hull integrity required watertight compartments and doors, and a well trained crew. Seems it needs software these days. No doubt there's an app for that, with pretty icons and pictures, as long as the subscription is up to date.
The fact that so many separate companies are involved tells us that there are clouds at sea too. Part of the problem is "cloud". If they sold the s/w to the shipping companies who then ran it on their own servers, then a single hack on the s/w would not result in 100's of companies and 1000's of ships being affected. But no, these days it's all about rent-seeking and being the next billionaire while becoming an ever increasingly large and lucrative target.
I wanred a major ship owner about this risk many years ago. I spoke at conferences about the need for rigourous cyber security. Needless to say I ws ignored. Comments like: Just trying to spend more of the companies money; its not necessary - no-one would hack us; No-one even knows about us. much less cares, so we are safe.
I even wrote a movie plot about it (it was a disaster movie, not a romcom!).
This has been an accident waiting to happen. I did hope that following the Maersk hacking incident in 2017 that the industry would sit up and take notice. But no. Easier to pretend it won't happen to you.
DUE DILIGENCE: I worked in shipping for 20 years as a business transformation manager, sitting between the business and the IT team.
i have a passing interest in this kinda thing, did my degree in marine studies and masters in international shipping, then worked in a shipyard before going in to IT 25 years ago. Plymouth Uni do quite a bit around maritime cyber security https://www.plymouth.ac.uk/research/cyber-ship-lab
OMG you've done my Sweden!
[Edit to add, an El Reg relevant example on Urban Dictionary just made me LOL!]
"ransomware attacks against the shipping and transportation sector had doubled from the second to the third quarter of 2022."
So, there was one in Q2 and two in Q3? Yeah, I followed the link and it was entirely percentages. Not an actual real number in sight. Lots of high percentage increases but with no baseline real numbers, utterly meaningless.